Quote:
Originally Posted by spaghetti_bolognese
..I don't get the subsequent part.
Code:
(egress) \
port $tcp_services
Could someone please explain it to me? |
- The parentheses about the external interface name indicates that the interface's IP address can change -- meaning that the address is set by an external DHCP server.
- $tcp_services is a list which will have been previously defined. By the name, this must be a list of port numbers which are allowed to pass through the firewall.
Be aware that development on
pf(4) has been rapid over the last few years. The syntax of rules have changed such that rulesets created for older versions of OpenBSD may no longer be valid. Because of this, it is important to match the documentation to whatever is installed.
Always consider the
pf(4) manpage the best source of information matched to the installed version. If the installed version is the latest publicly released version
(currently OpenBSD 4.7), information found on the
The OpenBSD Packet Filter guide is the second best source of information.